CVE-2016-1276

Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D25, and 15.1X49 before 15.1X49-D40 on a High-End SRX-Series chassis system with one or more Application Layer Gateways (ALGs) enabled allow remote attackers to cause a denial of service (CPU consumption, fab link failure, or flip-flop failovers) via vectors related to in-transit traffic matching ALG rules.

Published: Aug 5, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-1276
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.9
AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
juniper / junos	15.1x49-d30	15.1x49-d30.x
juniper / junos	12.3x48-d10	12.3x48-d10.x
juniper / junos	12.1x47-d10	12.1x47-d10.x
juniper / junos	12.1x46-d30	12.1x46-d30.x
juniper / junos	12.1x46-d45	12.1x46-d45.x
juniper / junos	12.3x48-d15	12.3x48-d15.x
juniper / junos	12.1x47-d20	12.1x47-d20.x
juniper / junos	12.1x46-d25	12.1x46-d25.x
juniper / junos	15.1x49-d35	15.1x49-d35.x
juniper / junos	12.1x47-d15	12.1x47-d15.x
juniper / junos	12.1x46-d35	12.1x46-d35.x
juniper / junos	15.1x49-d20	15.1x49-d20.x
juniper / junos	12.1x46-d20	12.1x46-d20.x
juniper / junos	15.1x49-d10	15.1x49-d10.x
juniper / junos	12.1x46-d40	12.1x46-d40.x
juniper / junos	12.1x46-d15	12.1x46-d15.x
juniper / junos	12.1x46-d10	12.1x46-d10.x
juniper / junos	15.1x49-d150	15.1x49-d150.x
juniper / junos	12.1x46	12.1x46.x
juniper / junos	12.1x47	12.1x47.x

Vulnerability Database

290,206

CVE-2016-1276